New security threats and identity theft schemes are being developed every day, and corporations invest millions of dollars and thousands of man-hours every year to keep their information safe and their network secure. Sadly, investing time and money into securing an organization and its clients can be completely undermined if employees don't understand their role in the security plan.
Security is everyone's responsibility. That's why we've put together these Top 10 Tips to help you keep yourself, your colleagues, and your company safe.
1. Don't be tricked into giving away confidential information
Don't respond to emails or phone calls requesting confidential company information such as employee information, financial results or company secrets. Nowadays, it is so easy for an unauthorized person to call and pretend to be a business partner or third-party vendor - be sure every member of your team stays on guard to avoid falling for this scam and knows to report any suspicious activity to IT.
2. Do password-protect sensitive files and devices
Always password-protect sensitive files on your computer, USB flash drive, smartphone, laptop, etc. Because losing a device can happen to anyone, protecting your device with strong passwords makes it more difficult for someone to break in and steal your data.
Also, try to use different passwords for different websites, documents, and devices. That way, if one gets hacked, your other accounts aren't compromised.
3. Do always use hard-to-guess passwords
Don't use obvious passwords like
"P@ssword" or "Simon123", and try to avoid obvious character sequences like "asdfg" or "12345." Instead, create unique, complex passwords by including different letter cases, numbers, and non-alphabetic characters (for example, !, $, #, %, @).
If you want to double-check the strength of your password, check out this nifty tool to see how long it would take your password to get cracked! The tool runs locally without sending data over the internet for added security. Try it out
here!
4. Don't use an unprotected computer
When you access sensitive information from a non-secure computer, for example at an Internet café or hotel, you put the information you're viewing at risk. Make sure your computer is running the latest approved security software, and always work in user mode rather than administrator mode when possible.
5. Do stay alert and report suspicious activity
Always report any suspicious activity to IT. Part of their job is to stop cyber attacks and to make sure your data isn't lost or stolen. Because everyone's job depends on each person keeping their data secure, in case something does go wrong, the faster IT knows about it, the sooner they can resolve the issue.
6. Do lock your computer and mobile phone when not in use
You work on important things, and we want to make sure they stay safe and secure. Make sure to always lock your computer and mobile phone when you're not using them to keep your data and contacts safe from prying eyes.
7.
Don't leave sensitive information lying around the office
Instead of leaving printouts containing sensitive information at your desk, lock them in a drawer or shred them. It's so easy for a visitor to glance at your desk and see sensitive documents - plus, in addition to reducing the risk of information leaks, keeping your desk tidy also makes the office look more organized!
8.
Do be cautious of suspicious emails and links
Even though it can be tempting, don't let curiosity get the best of you! Always delete suspicious emails and links as sometimes even opening or viewing these emails and links can compromise your computer and create unwanted problems without your knowledge. Remember, if something looks too good to be true, it probably is.
9.
Don't plug in personal devices without the OK from IT
Don't plug in personal devices like USB flash drives, MP3 players and smartphones without permission from IT. These devices can be compromised with code waiting to launch as soon as you plug them into a computer. Talk to IT about your devices, first, and then let them make the call.
10.
Do get authorization before installing new programs
Malicious applications often pose as legitimate programs like games, tools or even antivirus software. Their aim is to fool you into infecting your computer or network. If you like an application and think it could be useful to have on your work computer, contact IT and they will look into it for you before installing.
Security threats are here to stay and are constantly evolving, but by following these guidelines, you can minimize the risk of accidentally putting yourself or your business in a compromised position.
Thank you and stay safe!
|